Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/JFe2LYAkpVchP8KNaI5JiG6_9xA.roa
File: JFe2LYAkpVchP8KNaI5JiG6_9xA.roa (raw, json)
Hash identifier: UEPivlUovqJS5vfhxfdhzyPghmviKm5duooIAL4jZzw=
Subject key identifier: 24:57:B6:2D:80:24:A5:57:21:3F:C2:8D:68:8E:49:88:6E:BF:F7:10
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 10DF
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/JFe2LYAkpVchP8KNaI5JiG6_9xA.roa
Signing time: Wed 01 Feb 2023 10:29:09 +0000
ROA not before: Wed 01 Feb 2023 10:29:09 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 131627
IP address blocks: 106.105.249.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4319 (0x10df)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 1 10:29:09 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=2457B62D8024A557213FC28D688E49886EBFF710
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:05:c4:1a:15:94:45:b7:27:02:13:ab:54:0f:
a4:be:c8:5b:b2:e6:fc:ec:90:ef:9e:5a:75:d6:08:
24:1c:2f:4c:75:72:22:1b:df:60:2d:f3:4a:ba:af:
00:f8:02:5f:ae:46:c9:16:d9:f9:93:69:8c:be:82:
7a:e5:ad:ae:15:78:f7:ae:6d:34:a6:44:e7:13:71:
1d:d9:cb:cd:98:c2:ff:32:60:e6:48:0d:7d:ff:4b:
05:c3:bf:ca:bd:75:f7:32:e5:9c:78:21:6e:0b:e0:
d7:1b:a0:85:d4:d6:6c:91:20:67:23:2a:99:95:9c:
93:86:48:a9:cd:a0:a4:e0:36:fb:7b:1a:45:4d:9e:
d6:78:7a:a9:e4:dd:2c:fa:a7:0c:55:4a:67:9e:b1:
ff:c9:f4:95:91:f0:e7:bd:79:9f:65:9b:cb:79:8b:
68:27:24:2b:a1:20:4e:c2:25:24:61:27:51:6e:6b:
b5:fa:90:5f:66:3e:be:bb:78:65:f2:09:e0:e1:8a:
39:1c:2a:01:1a:e2:2f:23:67:2b:c8:50:98:8c:3f:
b2:6c:19:69:b3:56:b5:57:09:b7:e6:07:b2:45:75:
e9:26:1f:c4:59:c4:fe:44:9f:8a:27:fc:a5:d1:67:
1a:c5:4b:31:5d:36:4b:a9:6c:6b:00:b7:3a:67:8e:
32:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:57:B6:2D:80:24:A5:57:21:3F:C2:8D:68:8E:49:88:6E:BF:F7:10
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/JFe2LYAkpVchP8KNaI5JiG6_9xA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
106.105.249.0/24
Signature Algorithm: sha256WithRSAEncryption
78:4f:5f:78:2e:35:88:4b:15:5e:17:c0:51:b5:b1:00:eb:27:
66:0d:cc:b3:09:a3:00:41:bb:d8:69:7f:c9:33:b5:55:88:f5:
09:8b:8f:58:7b:01:dd:fc:14:59:1f:91:aa:02:59:c0:e2:64:
26:6c:01:11:73:d4:5e:74:08:47:f8:27:65:65:b9:d4:cb:aa:
b6:e2:86:52:d1:1c:14:90:c1:56:d5:77:87:fd:8e:a7:0b:d5:
8d:02:0c:0d:df:88:b0:f0:fc:ef:29:c7:49:c3:db:f3:9b:87:
01:90:ca:1f:cf:39:86:3e:db:e2:49:85:d2:98:ad:5e:7e:76:
bf:0b:4d:85:54:7e:10:de:ff:ae:c5:a3:20:af:9f:98:ee:eb:
0a:d2:b6:8c:0d:6e:16:ac:86:cd:5f:c6:e1:b7:76:06:1b:a1:
aa:5f:01:09:53:a0:8b:99:f6:0d:da:b8:7d:c0:79:a6:3a:7e:
93:b6:79:74:ae:91:ba:ae:6b:5f:f4:0a:bb:3c:19:93:8e:cf:
c8:b9:c1:dc:0f:8d:a9:81:a3:a1:60:1f:81:23:9a:41:66:cb:
0f:1b:6d:fe:62:0b:81:26:5d:ec:3d:1b:01:0a:9e:11:9d:f5:
f8:31:b6:66:c6:b1:36:40:2b:cc:d5:33:76:f3:5b:b0:7f:d1:
ee:7d:1f:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 1 09:53:15 2023 by rpki-client on console-fra.rpki-client.org